Runs Trivy as GitHub action to scan your Docker container image for vulnerabilities
-
Updated
Sep 3, 2025 - Shell
#
devsecops
Here are 112 public repositories matching this topic...
Integrate SonarQube scanner to GitHub Actions
-
Updated
Dec 29, 2024 - Shell
Welcome to CloudCaptain, your one-stop-shop for all things cloud-related!
python linux docker kubernetes yaml aws ansible devops networking gradle azure grafana chef cloud-computing bash-script devops-tools devsecops googlecloudplatform azure-devops github-actions
-
Updated
Jul 8, 2025 - Shell
A collection of technical and sales resources related to Prisma Cloud Compute and Prisma Cloud Enterprise created for the PANW Channel Partner Ecosystem and other engineers working with the solution
redlock cws devsecops prisma cwp twistlock prisma-cloud aporeto cspm cloudnativesecurity containersecurity cnapp
-
Updated
Dec 19, 2024 - Shell
EKS Goat: AWS ECR & EKS Security Masterclass by Anjali & Divyanshu
docker kubernetes cloudsecurity devsecops container-security eks infrastructure-security ekssecurity ekspentest container-hacking owasp-k8s cloud-security-redteam eksgoat eks-goat
-
Updated
Jan 25, 2025 - Shell
All that is required to run MobSF in the ci
-
Updated
Aug 11, 2023 - Shell
OWASP EKS Goat is a deliberately vulnerable EKS cluster environment to explore AWS cloud-native security through hands-on attack and defense labs with walkthrough.
hacking owasp cloud-native aws-security cloudsecurity devsecops redteam docker-security eks redteam-infrastructure kubernetes-security containersecurity awssecurity cve-2024-23897 ekssecurity eksgoat eks-goat cve202423897
-
Updated
Jul 27, 2025 - Shell
An ongoing & curated collection of awesome software best practices and techniques, libraries and frameworks, E-books and videos, websites, blog posts, links to github Repositories, technical guidelines and important resources about DevSecOps in Cybersecurity.
devops secops cybersecurity security-vulnerability security-automation security-tools devsecops security-engineering security-development security-compliance security-education cybersecurity-education security-management security-by-design security-lab security-enablement
-
Updated
Jul 25, 2025 - Shell
Mixeway is security orchestrator for vulnerability scanners which enable easy plug in integration with CICD pipelines. MixewayHub project contain one click docker-compose file which configure and run images from docker hub.
docker-compose cicd openvas vulnerability-management fortify acunetix security-automation security-tools devsecops vulnerability-scanning checkmarx dependency-track devsecops-pipeline security-orchestrator
-
Updated
Mar 15, 2024 - Shell
Quickly get a GitLab network up and running. The network consists of a GitLab server, docker-in-docker compatible GitLab runners, and SonarQube
-
Updated
Aug 28, 2025 - Shell
A centralized hub for platform engineering teams, providing resources, best practices, and automation tools. Includes IaC templates, blueprints, and operational guides to help build scalable, secure, and efficient platforms for cloud-native environments and DevSecOps workflows.
-
Updated
Aug 18, 2025 - Shell
Setup a DevSecOps Infrastructure Pipeline using All Native AWS Tools + CFN_NAG
-
Updated
Apr 28, 2021 - Shell
Helps you continuously monitor and fix common security vulnerabilities in your Django application.
-
Updated
Feb 20, 2023 - Shell
GitHub Action that wraps Yelp/detect-secrets and provides an enterprise friendly way of detecting and preventing secrets in code.
-
Updated
Sep 8, 2025 - Shell
This GitHub Action allows you to run Gitleaks in your GitHub workflow.
static-code-analysis secrets secrets-scan security-scanner devsecops sast secrets-management github-actions gitleaks secrets-detection security-scan secrets-scanner
-
Updated
Sep 5, 2025 - Shell
Multi-tenancy assets for IBM clients to build SaaS
-
Updated
Jul 22, 2022 - Shell
Collection of roadmaps, tools, best practice, resources about DevSecOps
kubernetes checklist security devops development security-audit continuous-integration continuous-delivery containers software-engineering devsecops sast dast
-
Updated
Apr 21, 2025 - Shell
Templates to integrate Fortify application security testing with Amazon Web Services (AWS), Azure, Google Cloud Platform (GCP) and Oracle Cloud Infrastructure (OCI)
aws devops ci application-security cicd appsec fortify fortify-sca devsecops fortify-ssc fortify-on-demand fortify-integration
-
Updated
Nov 9, 2024 - Shell
Improve this page
Add a description, image, and links to the devsecops topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the devsecops topic, visit your repo's landing page and select "manage topics."